$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/064c28e8-7c9d-4020-93d2-8a3f4249ae3a.roa File: 064c28e8-7c9d-4020-93d2-8a3f4249ae3a.roa (raw, json) Hash identifier: 53dQUQ7tp8YlEncvBgSOyQa/UXwC4QpTG2d8+yFgi/A= Subject key identifier: F9:37:74:50:8F:58:11:B9:7D:69:68:23:6F:81:47:3B:55:D8:38:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 176FD78210496A3BB2CD61E2F28A227C74CDB084 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/064c28e8-7c9d-4020-93d2-8a3f4249ae3a.roa Signing time: Fri 27 Jun 2025 00:20:25 +0000 ROA not before: Fri 27 Jun 2025 00:20:25 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6f:d7:82:10:49:6a:3b:b2:cd:61:e2:f2:8a:22:7c:74:cd:b0:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:20:25 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=bd9913fd4d40fac9e4a1639ec922a81baa19b5b992b3c0a2e2c36527e3ad8095, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:85:93:8c:36:27:47:bd:ce:7e:d1:db:45:dc: 7d:86:b4:c4:ff:e6:22:10:44:94:e1:7f:d7:57:f5: bd:e6:37:cd:2d:56:32:dd:d7:d8:e1:a0:17:5b:91: b8:6c:08:87:c7:10:46:12:27:2a:cb:ab:e8:68:c7: 9a:b1:16:de:b5:87:f9:6b:37:ab:2f:67:91:15:65: da:04:3f:5d:85:c9:2b:2e:ff:66:d2:7e:f6:af:75: d3:0d:b0:07:3d:8d:10:21:fc:60:41:a1:39:9f:66: 74:30:5a:f4:79:69:89:13:08:56:1d:c3:93:52:db: 5d:19:d4:60:55:ef:19:b7:ba:cd:9d:ea:f1:98:4a: 1a:0f:70:a6:9d:b4:7e:e5:66:0a:03:d2:5e:72:ef: b7:44:a5:48:e3:1d:80:23:49:be:91:d9:9d:ca:6d: 65:82:7e:82:23:ea:b2:ad:9e:e3:af:48:38:67:fa: d3:f4:2b:d4:b4:2c:db:92:79:ce:d4:ae:d0:6b:65: 20:7a:1d:88:e4:58:fe:fe:ec:15:b4:69:38:f0:4e: 7d:bf:18:67:1f:61:e8:bb:07:8b:91:18:6c:7c:db: 93:72:f8:4d:0a:a6:95:25:10:1e:ba:f0:d3:7d:f0: f5:57:fe:48:64:1b:b2:ef:e5:bb:ff:11:bf:51:cf: 12:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:37:74:50:8F:58:11:B9:7D:69:68:23:6F:81:47:3B:55:D8:38:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/064c28e8-7c9d-4020-93d2-8a3f4249ae3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.12.0/22 Signature Algorithm: sha256WithRSAEncryption ac:64:d9:7d:89:a8:9c:54:25:bf:9d:e2:4a:5d:4b:a8:00:18: e5:9d:f0:86:41:76:f5:bd:b7:38:f1:b3:3d:90:08:97:d7:c1: a8:6b:e2:06:d2:ed:0c:9f:66:eb:80:b8:06:c1:aa:e0:12:03: 6c:75:0d:51:4b:bf:f9:77:10:8e:66:e2:5b:4d:72:be:00:d8: 6e:f5:99:83:90:6d:51:a9:74:c2:c5:0c:0f:50:64:0b:76:15: e8:89:5b:59:aa:89:19:4e:8d:d9:76:ce:bc:1a:76:28:9b:01: 06:5d:88:c2:56:89:64:8f:8b:19:73:06:69:f5:30:8a:a6:f9: fa:b0:30:a7:81:57:10:49:10:d6:15:dd:26:52:29:6d:ee:b9: d6:d1:ec:e2:12:77:d4:8b:03:cc:1c:9c:b5:ab:8e:dc:b6:8b: fb:18:18:ae:cd:21:b8:c2:5a:0e:2a:0c:15:79:4b:8b:a1:dc: 22:b9:19:71:38:b0:4e:95:87:10:13:fb:d9:db:7b:59:cd:ff: 75:ca:ff:cc:1f:1d:ce:e3:64:5d:57:03:bd:8d:32:1c:57:f2: b2:c6:e0:c2:26:cc:b2:52:81:15:f1:08:65:3d:e6:14:c8:a5: 09:d3:6c:80:8f:7e:33:c9:e5:38:75:e9:77:7c:57:45:d5:ba: e2:9d:f4:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF2/XghBJajuyzWHi8ooifHTNsIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMDI1WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDk5MTNmZDRkNDBmYWM5ZTRhMTYzOWVjOTIyYTgxYmFh MTliNWI5OTJiM2MwYTJlMmMzNjUyN2UzYWQ4MDk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCehZOMNidHvc5+0dtF3H2GtMT/5iIQRJThf9dX9b3mN80t VjLd19jhoBdbkbhsCIfHEEYSJyrLq+hox5qxFt61h/lrN6svZ5EVZdoEP12FySsu /2bSfvavddMNsAc9jRAh/GBBoTmfZnQwWvR5aYkTCFYdw5NS210Z1GBV7xm3us2d 6vGYShoPcKadtH7lZgoD0l5y77dEpUjjHYAjSb6R2Z3KbWWCfoIj6rKtnuOvSDhn +tP0K9S0LNuSec7UrtBrZSB6HYjkWP7+7BW0aTjwTn2/GGcfYei7B4uRGGx825Ny +E0KppUlEB668NN98PVX/khkG7Lv5bv/Eb9RzxIFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+Td0UI9YEbl9aWgjb4FHO1XYOJ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2NGMyOGU4LTdjOWQtNDAyMC05M2QyLThhM2Y0MjQ5YWUzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIYbgwwDQYJKoZIhvcNAQELBQADggEBAKxk2X2JqJxUJb+d4kpdS6gAGOWd 8IZBdvW9tzjxsz2QCJfXwahr4gbS7QyfZuuAuAbBquASA2x1DVFLv/l3EI5m4ltN cr4A2G71mYOQbVGpdMLFDA9QZAt2FeiJW1mqiRlOjdl2zrwadiibAQZdiMJWiWSP ixlzBmn1MIqm+fqwMKeBVxBJENYV3SZSKW3uudbR7OISd9SLA8wcnLWrjty2i/sY GK7NIbjCWg4qDBV5S4uh3CK5GXE4sE6VhxAT+9nbe1nN/3XK/8wfHc7jZF1XA72N MhxX8rLG4MImzLJSgRXxCGU95hTIpQnTbICPfjPJ5Th16Xd8V0XVuuKd9Ac= -----END CERTIFICATE-----Generated at Sun Jun 29 08:52:59 2025 by rpki-client